From owner-freebsd-questions@freebsd.org Fri Mar 13 11:32:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D14F725C33F for ; Fri, 13 Mar 2020 11:32:45 +0000 (UTC) (envelope-from Christian.Schmidt@chemie.uni-hamburg.de) Received: from mailhost.chemie.uni-hamburg.de (mailhost.chemie.uni-hamburg.de [134.100.212.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 48f3TR3qBXz43TS for ; Fri, 13 Mar 2020 11:32:43 +0000 (UTC) (envelope-from Christian.Schmidt@chemie.uni-hamburg.de) Received: from mailhost.chemie.uni-hamburg.de (localhost [127.0.0.1]) by mailhost.chemie.uni-hamburg.de (Postfix) with ESMTP id DB62210240C7 for ; Fri, 13 Mar 2020 12:32:40 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d= chemie.uni-hamburg.de; h=content-transfer-encoding :content-language:content-type:content-type:in-reply-to :mime-version:user-agent:date:date:message-id:organization:from :from:references:subject:subject:received:received; s=20120215; t=1584099159; bh=SsGTnV7Cdz/CM9EXkyMeZNOFDJgCp/tLUAyVLAMdUxk=; b= aBzCq4qUfT1AVb7P57VaQcSNRhA2D4cbD5am7ze8keZy6h3ZXASSLdxm0An0NhkX ZIMEPfSdMEXpGP16L2p9MtUbRzSCF3HFvWihX3WTTBUlU1u0qpqWDN9edH0D5ejm OG9whcCw+xIEak8uuE0XrNtI4eRQuRyXlINtbAphDqg= X-Virus-Scanned: amavisd-new at mailhost.chemie.uni-hamburg.de Received: from mailhost.chemie.uni-hamburg.de ([127.0.0.1]) by mailhost.chemie.uni-hamburg.de (mailhost.chemie.uni-hamburg.de [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 5w1o4Lwx6ZuK for ; Fri, 13 Mar 2020 12:32:39 +0100 (CET) Received: from [134.100.212.113] (itservice3.chemie.uni-hamburg.de [134.100.212.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: schmidtc@chemie.uni-hamburg.de) by mailhost.chemie.uni-hamburg.de (Postfix) with ESMTPSA id D448910240C1 for ; Fri, 13 Mar 2020 12:32:39 +0100 (CET) Subject: Re: Centralized user/group/whatever management To: freebsd-questions@freebsd.org References: <20200313091923.GA98495@admin.sibptus.ru> From: Christian Schmidt Organization: Universitaet Hamburg Message-ID: <9545bd42-2946-0f82-619f-d7cad6d17e5d@chemie.uni-hamburg.de> Date: Fri, 13 Mar 2020 12:32:39 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.4.1 MIME-Version: 1.0 In-Reply-To: <20200313091923.GA98495@admin.sibptus.ru> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Language: de-DE Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 48f3TR3qBXz43TS X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=chemie.uni-hamburg.de header.s=20120215 header.b=aBzCq4qU; dmarc=none; spf=pass (mx1.freebsd.org: domain of Christian.Schmidt@chemie.uni-hamburg.de designates 134.100.212.5 as permitted sender) smtp.mailfrom=Christian.Schmidt@chemie.uni-hamburg.de X-Spamd-Result: default: False [-3.16 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; RWL_MAILSPIKE_GOOD(0.00)[5.212.100.134.rep.mailspike.net : 127.0.0.18]; R_SPF_ALLOW(-0.20)[+a:mailhost.chemie.uni-hamburg.de]; TO_DN_NONE(0.00)[]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; HAS_ORG_HEADER(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; RCVD_IN_DNSWL_MED(-0.20)[5.212.100.134.list.dnswl.org : 127.0.11.2]; DKIM_TRACE(0.00)[chemie.uni-hamburg.de:+]; FROM_EQ_ENVFROM(0.00)[]; IP_SCORE(0.01)[asn: 680(0.08), country: DE(-0.02)]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:680, ipnet:134.100.0.0/16, country:DE]; RCVD_TLS_LAST(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[chemie.uni-hamburg.de:s=20120215]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_MED(-2.00)[uni-hamburg.de.dwl.dnswl.org : 127.0.11.2]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.92)[-0.920,0]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[uni-hamburg.de]; NEURAL_SPAM_MEDIUM(0.94)[0.945,0]; RCPT_COUNT_ONE(0.00)[1] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Mar 2020 11:32:45 -0000 Hi Victor, Victor Sudakov, 13.03.20: > Do you think there exists a modern solution for centralized user/group/... > management compatible with FreeBSD and Linux? > > I have experience using NIS on FreeBSD for many years, but NIS is really very > dated, not very secure, depends on the NIS servers being reachable all the > time, depends on Sun RPC (portmapper, dynamic ports) and has other > drawbacks. I know this from experience. > > Are there any modern solutions for FreeBSD hosts to have at least a common > user/userid/group/groupid database, or maybe even more centralized goodies? (Open)LDAP is quite commonly used for this. Kind Regards Christian Schmidt -- No signature available.